Lucene search
K

17 matches found

OpenVAS
OpenVAS
added 2021/07/07 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for python-ecdsa (EulerOS-SA-2021-2161)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS9.3AI score0.01596EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2019/10/19 12:0 a.m.33 views

Fedora Update for python-ecdsa FEDORA-2019-5297458c78

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS8.5AI score0.02505EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2018/05/14 6:4 p.m.32 views

Samsung Patches Six Critical Bugs in Flagship Handsets

Samsung began rolling out patches over the weekend to fix six critical bugs found in its flagship Android handsets as part of its May patch bulletin. Flaws range from a remote code execution bug to a buffer overflow vulnerability, plus a peek-and-poke command bug that leaves memory locations open...

10CVSS9.6AI score0.0165EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2015/08/24 3:38 p.m.2 views

NSS: ECDSA signature validation fails to handle some signatures correctly (MFSA 2015-64)

A flaw was found in the way NSS verified certain ECDSA Elliptic Curve Digital Signature Algorithm signatures. Under certain conditions, an attacker could use this flaw to conduct signature forgery attacks...

4.3CVSS6.8AI score0.03594EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/08/14 12:0 a.m.898 views

OpenSSL 'ChangeCipherSpec' MiTM Vulnerability

The OpenSSL service on the remote host is vulnerable to a man-in-the-middle MiTM attack, based on its acceptance of a specially crafted handshake. This flaw could allow a MiTM attacker to decrypt or forge SSL messages by telling the service to begin encrypted communications before key material ha...

7.4CVSS7.5AI score0.99977EPSS
Exploits14References10
Tenable Nessus
Tenable Nessus
added 2014/08/04 12:0 a.m.99 views

IBM WebSphere Application Server 8.0 < Fix Pack 9 Multiple Vulnerabilities

IBM WebSphere Application Server 8.0 prior to Fix Pack 9 is running on the remote host. It is, therefore, affected by the following vulnerabilities : - A cross-site scripting flaw exists within the Administration Console, where user input is improperly validated. This could allow a remote attacke...

7.8CVSS7.9AI score0.83175EPSS
Exploits13References25
Tenable Nessus
Tenable Nessus
added 2014/07/17 12:0 a.m.35 views

McAfee Email Gateway OpenSSL Multiple Vulnerabilities (SB10075)

The remote host is running a version of McAfee Email Gateway MEG that is affected by the multiple vulnerabilities related to the included OpenSSL library : - An error exists in the function 'ssl3readbytes' that can allow data to be injected into other sessions or allow denial of service attacks...

7.4CVSS8.1AI score0.99977EPSS
Exploits14References9
Tenable Nessus
Tenable Nessus
added 2014/07/14 12:0 a.m.90 views

Mac OS X : Cisco AnyConnect Secure Mobility Client 2.x / 3.x < 3.1(5170) Multiple OpenSSL Vulnerabilities

The remote host has a version of Cisco AnyConnect prior to 3.15170. It is, therefore, potentially affected by the following vulnerabilities : - An error exists related to the implementation of the Elliptic Curve Digital Signature Algorithm ECDSA that could allow nonce disclosure via the...

7.4CVSS8.1AI score0.99977EPSS
Exploits14References6
Tenable Nessus
Tenable Nessus
added 2014/07/14 12:0 a.m.78 views

Cisco AnyConnect Secure Mobility Client 2.x / 3.x < 3.1(5170) Multiple OpenSSL Vulnerabilities

The remote host has a version of Cisco AnyConnect prior to 3.15170. It is, therefore, potentially affected by the following vulnerabilities : - An error exists related to the implementation of the Elliptic Curve Digital Signature Algorithm ECDSA that could allow nonce disclosure via the...

7.4CVSS8.1AI score0.99977EPSS
Exploits14References6
Tenable Nessus
Tenable Nessus
added 2014/07/02 12:0 a.m.226 views

HP System Management Homepage < 7.2.4.1 / 7.3.3.1 OpenSSL Multiple Vulnerabilities

According to the web server's banner, the version of HP System Management Homepage SMH hosted on the remote web server has an implementation of the OpenSSL library that is affected by the following vulnerabilities : - An error exists in the ssl3readbytes function that allows data to be injected...

7.4CVSS8.2AI score0.99977EPSS
Exploits14References17
Tenable Nessus
Tenable Nessus
added 2014/06/18 12:0 a.m.100 views

Cisco Windows Jabber Client Multiple Vulnerabilities in OpenSSL (cisco-sa-20140605-openssl)

The remote Windows host has a version of Cisco Jabber installed that is known to be affected by multiple OpenSSL related vulnerabilities : - An error exists related to the implementation of the Elliptic Curve Digital Signature Algorithm ECDSA that could allow nonce disclosure via the 'FLUSH+RELOA...

7.4CVSS7.5AI score0.95326EPSS
Exploits10References6
Tenable Nessus
Tenable Nessus
added 2014/06/18 12:0 a.m.79 views

Cisco TelePresence MCU Series Devices Multiple Vulnerabilities in OpenSSL

The remote Cisco TelePresence MCU device is running a software version known to be affected by multiple OpenSSL related vulnerabilities : - An error exists related to the implementation of the Elliptic Curve Digital Signature Algorithm ECDSA that could allow nonce disclosure via the 'FLUSH+RELOAD...

7.4CVSS7.5AI score0.95326EPSS
Exploits10References5
Tenable Nessus
Tenable Nessus
added 2014/06/18 12:0 a.m.89 views

Cisco ONS 15400 Series Devices Multiple Vulnerabilities in OpenSSL

The remote Cisco ONS device is running a software version known to be affected by multiple OpenSSL related vulnerabilities : - An error exists related to the implementation of the Elliptic Curve Digital Signature Algorithm ECDSA that could allow nonce disclosure via the 'FLUSH+RELOAD' cache...

4.3CVSS7.7AI score0.85784EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2014/06/03 12:0 a.m.65 views

IBM Global Security Kit 7 < 7.0.4.50 / 8.0.14.x < 8.0.14.43 / 8.0.50.x < 8.0.50.20 Multiple Vulnerabilities

The remote Windows host has a version of IBM Global Security Kit prior to 7.0.4.50 / 8.0.14.43 / 8.0.50.20. It is, therefore, affected by the following vulnerabilities : - An error exists related to the implementation of the Elliptic Curve Digital Signature Algorithm ECDSA that could allow nonce...

7.1CVSS7AI score0.03077EPSS
Exploits1References27
Tenable Nessus
Tenable Nessus
added 2014/06/03 12:0 a.m.160 views

IBM Global Security Kit 7 < 7.0.4.50 / 8.0.14.x < 8.0.14.43 / 8.0.50.x < 8.0.50.20 Multiple Vulnerabilities (Linux)

The remote Linux host has a version of IBM Global Security Kit prior to 7.0.4.50 / 8.0.14.43 / 8.0.50.20. It is, therefore, affected by the following vulnerabilities : - An error exists related to the implementation of the Elliptic Curve Digital Signature Algorithm ECDSA that could allow nonce...

7.1CVSS7AI score0.03077EPSS
Exploits1References27
Tenable Nessus
Tenable Nessus
added 2014/04/21 12:0 a.m.94 views

VMware Workstation 10.x < 10.0.2 OpenSSL Library Multiple Vulnerabilities (VMSA-2014-0004) (Heartbleed)

The version of VMware Workstation installed on the remote host is version 10.x prior to 10.0.2. It is, therefore, reportedly affected by the following vulnerabilities in the OpenSSL library : - An error exists related to the implementation of the Elliptic Curve Digital Signature Algorithm ECDSA...

7.5CVSS7.8AI score0.99999EPSS
Exploits88References8
ThreatPost
ThreatPost
added 2012/12/05 4:15 p.m.60 views

Six Security Flaws Fixed in BIND 9.9.2

A new version of the BIND DNS server software is available, fixing six security vulnerabilities and a long list of other bugs. BIND 9.9.2-P1 is mainly a security update and most of the issues it fixes are crashes and not remote code execution flaws. BIND is the overwhelming leader in market share...

8.5CVSS0.7AI score0.36798EPSS
Exploits3References2
Rows per page
Query Builder